Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/XoWFGOJ2fqgL4E_VrB9dAkuGKFI.roa
File: XoWFGOJ2fqgL4E_VrB9dAkuGKFI.roa (raw, json)
Hash identifier: D0fBZhLXNRxkbhSlxTkn9YgXcF7whB2xAKf+av/uy9Q=
Subject key identifier: 5E:85:85:18:E2:76:7E:A8:0B:E0:4F:D5:AC:1F:5D:02:4B:86:28:52
Certificate issuer: /CN=618478f198fe569010c3df6219142f530c4f5e56
Certificate serial: 018CC79524308BA236FCFE55A608AC920D8A
Authority key identifier: 61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/XoWFGOJ2fqgL4E_VrB9dAkuGKFI.roa
Signing time: Tue 02 Jan 2024 00:31:29 +0000
ROA not before: Tue 02 Jan 2024 00:31:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57013
IP address blocks: 91.231.187.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 04 Apr 2024 10:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:24:30:8b:a2:36:fc:fe:55:a6:08:ac:92:0d:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618478f198fe569010c3df6219142f530c4f5e56
Validity
Not Before: Jan 2 00:31:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=5e858518e2767ea80be04fd5ac1f5d024b862852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:66:b7:e0:c6:dd:01:ae:f2:88:aa:84:b1:a9:
f7:9f:ed:5c:80:ff:47:2a:a5:8c:ee:2a:37:28:6c:
7d:90:23:21:ab:93:fa:ea:92:ce:43:c0:5d:b3:09:
17:b6:64:d5:45:ed:31:9a:fd:2a:1e:8e:b8:27:a8:
26:a3:a1:4d:fb:f4:49:dd:38:8e:eb:c6:07:fe:66:
d0:cf:a3:87:c9:35:d6:79:af:61:f3:66:a9:86:a3:
cf:86:48:40:b5:4e:4d:b1:af:c2:4d:5c:9c:c1:f1:
1a:e0:22:1e:63:c8:f4:2f:12:e7:0b:71:58:78:7c:
ac:b1:90:72:ad:7f:90:8e:b4:cb:ae:fc:15:bd:ff:
47:17:e2:b6:95:a5:37:e3:97:53:02:9b:08:2d:15:
bd:86:2c:70:0b:b2:62:da:ce:99:70:b4:5e:ca:21:
11:e3:72:ef:b5:fd:6e:7c:b4:b9:f6:9c:26:44:1a:
9f:bb:c8:5b:e8:c6:f6:34:da:8e:23:4d:7f:45:b5:
6d:44:61:9a:53:42:2d:c8:eb:62:b2:fe:9e:37:8b:
2c:7b:8d:68:23:42:a0:3a:3d:ff:73:4a:7c:c2:e5:
57:81:01:44:37:10:19:f7:e5:4b:2b:e3:ee:8c:71:
70:33:08:c5:7d:73:b0:a4:07:b7:51:bf:9b:eb:67:
e3:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:85:85:18:E2:76:7E:A8:0B:E0:4F:D5:AC:1F:5D:02:4B:86:28:52
X509v3 Authority Key Identifier:
keyid:61:84:78:F1:98:FE:56:90:10:C3:DF:62:19:14:2F:53:0C:4F:5E:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYR48Zj-VpAQw99iGRQvUwxPXlY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/XoWFGOJ2fqgL4E_VrB9dAkuGKFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/53c7b8-5e4b-49fd-8c91-ba98f1122121/1/YYR48Zj-VpAQw99iGRQvUwxPXlY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.231.187.0/24
Signature Algorithm: sha256WithRSAEncryption
80:fa:1b:1b:f2:4b:0a:d2:96:db:52:4f:5f:58:14:db:71:6b:
3c:67:6a:95:07:1c:00:85:e5:97:26:4d:52:87:5d:62:75:c6:
58:75:5f:b3:06:05:f9:7c:5e:4c:db:d4:77:ad:4b:39:72:93:
ac:c2:cc:a5:84:33:4a:53:9c:47:23:d2:27:0a:42:00:38:1a:
a0:b4:5c:9a:a8:74:75:22:ed:0b:24:40:cf:b6:4a:9f:12:6e:
92:dc:de:8b:c7:52:1b:e7:7f:51:02:de:2f:30:10:ef:3e:f4:
ec:2c:83:e7:13:e6:ad:8e:7d:f8:ce:06:f3:d9:68:65:73:2b:
89:c9:78:ba:ab:64:68:6f:ee:92:5f:ad:f6:70:eb:98:a9:59:
5c:df:62:5e:41:81:30:1c:1f:d7:03:f5:b4:a1:c9:10:4e:4b:
b6:4a:95:89:43:ea:fd:5e:88:fb:24:9c:9c:96:54:27:47:0e:
28:d8:0b:33:04:88:48:2d:ae:fa:1b:8a:b0:a5:ac:2a:12:d1:
dd:7f:76:fd:9f:22:8d:66:8c:23:4f:9d:12:a9:8f:89:79:f1:
cf:e0:d3:88:30:47:45:66:7c:c0:92:0f:75:6e:e2:e7:50:b9:
89:d7:e0:61:69:54:6c:43:1f:03:f1:23:dd:c3:b5:e1:f6:80:
64:93:ab:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:38 2024 by rpki-client on console-ams.rpki-client.org